IN THE CLAIMS 



Please cancel claims 4, 8-9, 18, 42-43, 55-56 and 66-67. 
Please amend the claims as follows. 



1 1. (Currently Amended) An apparatus comprising: 

2 at least one processor; 

3 a memory coupled to the at least one processor; 

4 a first program residing in the memory; 

5 a second program residing in the memory; 

6 a third program residing in the memory; 

7 a dynamic key generation mechanism that dynamically generates public/private 

8 key pairs; and 

9 an inter-program authentication mechanism that authenticates the first program to 



1 0 the second program using a public/private key pair that is dynamically g e n e rat e d by th e 

11 dynamic key generation mechanism using a first authentication token that is digitally 

12 signed by the first program using a private key that is dynamically generated by the 

13 dynamic key generation mechanism, that authenticates the second program to the first 

14 program, if required, by digitally signing the first authentication token using a private key 

15 corresponding to the second program to generate therefrom a second authentication token. 

16 and returning the second authentication token to the first program, and that authenticates 

17 the second program to the third program by generating a third authentication token from 

18 the first authentication token received from the first program, and sending the third 

19 authentication token to the third program . 

1 2. (Original) The apparatus of claim 1 wherein the first program includes an 

2 authentication mechanism that authenticates a user. 



2 



1 3. (Original) The apparatus of claim 1 wherein, after the inter-program authentication 

2 mechanism authenticates the first program to the second program, the second program 

3 performs identity mapping from an identity asserted by the first program to an identity 

4 understood by the second program. 

1 4 (Cancelled) 

1 5. (Currently Amended) The apparatus of claim [[4]] I wherein the first authentication 

2 token comprises: 

3 information about a user that authenticates with the first program; 

4 information about the first program; 

5 information about the second program; and 

6 a digital signature of the first program using a private key for the first program 

7 generated by the dynamic key generation mechanism. 

1 6. (Currently Amended) The apparatus of claim [[4]] 1 wherein the second program 

2 verifies the first authentication token by querying a public key authority for the public key 

3 corresponding to the first program. 

1 7. (Original) The apparatus of claim 6 wherein the second program verifies the first 

2 authentication token by verifying the digital signature of the first program using the 

3 public key for the first program retrieved from the public key authority. 

1 8-9 (Cancelled) 

1 10. (Currently Amended) The apparatus of claim [[9]] I wherein the third program 

2 verifies the third authentication token by querying a public key authority for the public 

3 key corresponding to the second program. 



3 



1 11. (Original) The apparatus of claim 1 further comprising log file that is written to each 

2 time a program verifies an authentication token. 

1 12. (Currently Amended) An apparatus comprising: 

2 at least one processor; 

3 a memory coupled to the at least one processor; 

4 a first program residing in the memory, the first program including an 

5 authentication mechanism that authenticates a user; 

6 a second program residing in the memory; 

7 a dynamic key generation mechanism that dynamically generates public/private 

8 key pairs; 

9 a public key authority that publishes public keys generated by the dynamic key 

10 generation mechanism; and 

1 1 an inter-program authentication mechanism that authenticates the first program to 



12 the second program using a first authentication token that is digitally signed by the first 

13 program using a private key that is dynamically generated by the dynamic key generation 

14 mechanism and that authenticates the second program to the first program, if required, by 

15 digitally signing the first authentication token using a private key corresponding to the 

16 second program to generate therefrom a second authentication token, and returning the 

17 second authentication token to the first program . 

1 13. (Original) The apparatus of claim 12 wherein, after the inter-program authentication 

2 mechanism authenticates the first program to the second program, the second program 

3 performs identity mapping from an identity asserted by the first program to an identity 

4 understood by the second program. 



4 



1 14. (Original) The apparatus of claim 12 wherein the first authentication token 

2 comprises: 

3 information about a user that authenticates with the first program; 

4 information about the first program; 

5 information about the second program; and 

6 a digital signature of the first program using a private key for the first program 

7 generated by the dynamic key generation mechanism. 

1 15. (Original) The apparatus of claim 12 wherein the second program verifies the first 

2 authentication token by querying the public key authority for the public key 

3 corresponding to the first program. 

1 16. (Original) The apparatus of claim 15 wherein the second program verifies the first 

2 authentication token by verifying the digital signature of the first program using the 

3 public key for the first program retrieved from the public key authority. 

1 17. (Original) The apparatus of claim 12 wherein the second program authenticates to 

2 the first program, if required, by digitally signing the first authentication token using a 

3 private key corresponding to the second program to generate therefrom a second 

4 authentication token, and returning the second authentication token to the first program. 

1 18. (Cancelled) 

1 19. (Currently Amended) The apparatus of claim [[18]] 12 wherein the third program 

2 verifies the third authentication token by querying the public key authority for the public 

3 key corresponding to the second program. 

1 20. (Original) The apparatus of claim 12 further comprising a log file that is written to 

2 each time a program verifies an authentication token. 



5 



1 21. (Original) An apparatus comprising: 

2 at least one processor; 

3 a memory coupled to the at least one processor; 

4 a first program residing in the memory; 

5 a second program residing in the memory; 

6 a third program residing in the memory; 

7 a dynamic key generation mechanism that dynamically generates public/private 

8 key pairs; and 

9 an inter-program authentication mechanism that authenticates the first program to 

10 the second program using a first authentication token generated by the first program using 

11 a public/private key pair corresponding to the first program, and that authenticates the 

12 second program to the third program using a second authentication token that includes all 

13 information in the first authentication token. 



6 



1 22. (Original) A method for a first program to authenticate to a second program, the 

2 method comprising the steps of: 

3 (A) dynamically generating a public/private key pair for the first program; 

4 (B) the first program generating a first authentication token using the private key 

5 dynamically generated in step (A); and 

6 (C) the second program verifying the first authentication token using the public 

7 key dynamically generated in step (A). 

1 23. (Original) The method of claim 22 wherein the second program verifies the first 

2 authentication token in step (C) by verifying a digital signature of the first program in the 

3 authentication token using the public key for the first program. 



1 24. (Original) The method of claim 22 further comprising the step of authenticating a 

2 user to the first program. 

1 25. (Original) The method of claim 22 further comprising the step of performing identity 

2 mapping from an identity asserted by the first program to an identity understood by the 

3 second program. 

1 26. (Original) The method of claim 22 wherein the first authentication token comprises: 



2 information about a user that authenticates with the first program; 

3 information about the first program; 

4 information about the second program; and 

5 a digital signature of the first program using a private key for the first program 



6 generated by the dynamic key generation mechanism. 



7 



1 27. (Original) The method of claim 22 further comprising the steps of: 

2 (D) dynamically generating a public/private key pair for the second program; 

3 (E) the second program digitally signing the first authentication token using the 

4 private key generated in step (D) to generate therefrom a second authentication token; and 

5 (F) returning the second authentication token to the first program to authenticate 

6 the second program to the first program. 

1 28. (Original) The method of claim 22 further comprising the step of the second 

2 program authenticating to a third program by generating a third authentication token from 

3 the first authentication token and sending the third authentication token to the third 

4 program. 

1 29. (Original) The method of claim 28 further comprising the step of the third program 

2 verifying the third authentication token by using the public key generated in step (D). 

1 30. (Original) The method of claim 22 further comprising the step of writing to a log file 

2 that is written to each time a program verifies an authentication token. 



8 



1 31. (Original) A method for a first program to authenticate to a second program, the 

2 method comprising the steps of: 

3 (A) dynamically generating a public/private key pair for the first program; 

4 (B) sending the public key for the first program to a public key authority; 

5 (C) dynamically generating a public/private key pair for the second program; 

6 (D) sending the public key for the second program to the public key authority; 

7 (E) the first program generating a first authentication token using the private key 

8 for the first program; and 

9 (F) the second program verifying the first authentication token by querying the 



1 0 public key authority for the public key corresponding to the first program. 

1 32. (Original) The method of claim 3 1 wherein the second program verifies the first 

2 authentication token in step (F) by verifying a digital signature of the first program in the 

3 authentication token using the public key for the first program retrieved from the public 

4 key authority. 

1 33. (Original) The method of claim 31 further comprising the step of authenticating a 

2 user to the first program. 

1 34. (Original) The method of claim 3 1 further comprising the step of performing identity 

2 mapping from an identity asserted by the first program to an identity understood by the 

3 second program. 

1 35. (Original) The method of claim 31 wherein the first authentication token comprises: 



2 information about a user that authenticates with the first program; 

3 information about the first program; 

4 information about the second program; and 

5 a digital signature of the first program using a private key for the first program 



6 generated by the dynamic key generation mechanism. 

9 



1 36. (Original) The method of claim 31 further comprising the steps of: 

2 (G) dynamically generating a public/private key pair for the second program; 

3 (H) the second program digitally signing the first authentication token using the 

4 private key generated in step (G) to generate therefrom a second authentication token; and 

5 (I) returning the second authentication token to the first program to authenticate 

6 the second program to the first program. 

1 37. (Original) The method of claim 3 1 further comprising the step of the second 

2 program authenticating to a third program by generating a third authentication token from 

3 the first authentication token and sending the third authentication token to the third 

4 program. 

1 38. (Original) The method of claim 37 further comprising the step of the third program 

2 verifying the third authentication token by using the public key corresponding to the 

3 second program. 

1 39. (Original) The method of claim 3 1 further comprising the step of writing to a log file 

2 that is written to each time a program verifies an authentication token. 



10 



1 40. (Original) A method for authenticating a first program to a third program, the 

2 method comprising the steps of: 

3 authenticating the first program to a second program using a first authentication 

4 token generated by the first program using a public/private key pair corresponding to the 

5 first program; and 

6 authenticating the second program to the third program using a second 

7 authentication token that includes all information in the first authentication token. 



11 



1 41. (Currently Amended) A computer-readable program product comprising: 

2 (A) an inter-program authentication mechanism that authenticates a first program 

3 to a second program using a public/private key pair that is dynamically generated by a 

4 dynamic key generation mechanism; and 

5 (B) computer-readable signal bearing recordable media bearing the inter-program 

6 authentication mechanism. 



1 42-43 (Cancelled) 

1 44. (Original) The program product of claim 41 wherein the first program includes an 

2 authentication mechanism that authenticates a user. 

1 45. (Original) The program product of claim 41 wherein, after the inter-program 

2 authentication mechanism authenticates the first program to the second program, the 

3 second program performs identity mapping from an identity asserted by the first program 

4 to an identity understood by the second program. 

1 46. (Original) The program product of claim 41 wherein the first program authenticates 

2 to the second program using a first authentication token that is digitally signed by the first 

3 program using a key that is dynamically generated by the dynamic key generation 

4 mechanism. 

1 47. (Original) The program product of claim 46 wherein the first authentication token 

2 comprises: 



3 information about a user that authenticates with the first program; 

4 information about the first program; 

5 information about the second program; and 

6 a digital signature of the first program using a private key for the first program 



7 generated by the dynamic key generation mechanism. 



12 



1 48. (Original) The program product of claim 46 wherein the second program verifies the 

2 first authentication token by querying the public key authority for the public key 

3 corresponding to the first program. 

1 49. (Original) The program product of claim 48 wherein the second program verifies the 

2 first authentication token by verifying the digital signature of the first program using the 

3 public key for the first program retrieved from the public key authority. 

1 50. (Original) The program product of claim 46 wherein the second program 

2 authenticates to the first program, if required, by digitally signing the first authentication 

3 token using a private key corresponding to the second program to generate therefrom a 

4 second authentication token, and returning the second authentication token to the first 

5 program. 

1 51. (Original) The program product of claim 50 further comprising a third program, 

2 wherein the second program authenticates to the third program by generating a third 

3 authentication token from the first authentication token received from the first program, 

4 and sending the third authentication token to the third program. 

1 52. (Original) The program product of claim 5 1 wherein the third program verifies the 

2 third authentication token by querying the public key authority for the public key 

3 corresponding to the second program. 

1 53. (Original) The program product of claim 41 further comprising log file that is 

2 written to each time a program verifies an authentication token. 



13 



1 54. (Currently Amended) A computer-readable program product comprising: 

2 (A) an inter-program authentication mechanism that authenticates a first program 

3 to a second program using a first authentication token that is digitally signed by the first 

4 program using a key that is dynamically generated by a dynamic key generation 

5 mechanism in a public key authority, the first program including an authentication 

6 mechanism that authenticates a user; and 

7 (B) computer-readable signal bearing recordable media bearing the inter-program 

8 authentication mechanism. 



1 55-56 (Cancelled) 



1 57. (Original) The program product of claim 54 wherein, after the inter-program 

2 authentication mechanism authenticates the first program to the second program, the 

3 second program performs identity mapping from an identity asserted by the first program 

4 to an identity understood by the second program. 



1 58. (Original) The program product of claim 54 wherein the first authentication token 

2 comprises: 

3 information about a user that authenticates with the first program; 

4 information about the first program; 

5 information about the second program; and 

6 a digital signature of the first program using a private key for the first program 

7 generated by the dynamic key generation mechanism. 



1 59. (Original) The program product of claim 54 wherein the second program verifies the 

2 first authentication token by querying the public key authority for the public key 

3 corresponding to the first program. 
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1 60. (Original) The program product of claim 59 wherein the second program verifies the 

2 first authentication token by verifying the digital signature of the first program using the 

3 public key for the first program retrieved from the public key authority. 

1 61 . (Original) The program product of claim 54 wherein the second program 

2 authenticates to the first program, if required, by digitally signing the first authentication 

3 token using a private key corresponding to the second program to generate therefrom a 

4 second authentication token, and returning the second authentication token to the first 

5 program. 

1 62. (Original) The program product of claim 61 further comprising a third program, 

2 wherein the second program authenticates to the third program by generating a third 

3 authentication token from the first authentication token received from the first program, 

4 and sending the third authentication token to the third program. 

1 63. (Original) The program product of claim 61 wherein the third program verifies the 

2 third authentication token by querying the public key authority for the public key 

3 corresponding to the second program. 

1 64. (Original) The program product of claim 54 further comprising a log file that is 

2 written to each time a program verifies an authentication token. 
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1 65. (Currently Amended) A computer-readable program product comprising: 

2 (A) an inter-program authentication mechanism that authenticates a first program 

3 to a second program using a first authentication token generated by the first program 

4 using a public/private key pair corresponding to the first program, and that authenticates 

5 the second program to a third program using a second authentication token that includes 

6 all information in the first authentication token; and 

7 (B) computer-readable signal bearing recordable media bearing the inter-program 

8 authentication mechanism. 

1 66-67. (Cancelled) 
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